Vulnerability Management Engineer

You will take your security knowledge and engineering skills to help implement controls and countermeasures at the tactical level to mitigate security gaps and improve HP's cybersecurity posture. You will collaborate with technology groups and application owners to ensure the security tools are operating according to standards and help identify policy drift. Attention to detail, precision, and objectivity is required as a member of the team.

• Responsible for design and maintenance of processes in support of endpoint systems including workstations and servers, Windows and Linux operating systems, and network gear.
• Able to consume data from multiple systems and return a report for various Stakeholders within the organization with highlights, when needed, showcasing the ability to see areas of most concern based on the output.
• Help manage the protection of corporate endpoints by working with others to mitigate vulnerabilities as applicable.
• Work as a member of a team that may involve not only fulltime employees but also members of a Managed Service Provider hired to aid the Cybersecurity Operations Department.
• Maintain and develop required diagrams, documentation, and procedures to ensure continuous operation of supported security systems.
• Write and review internal communications and knowledgebase articles to provide information to employees, technical and non-technical, to foster better understanding of vulnerabilities.
• Be a contributing member to the various internal service offerings such as Vulnerability Management, External Attack Surface Management, and Device Hardening.

• Technical Cybersecurity Certification through one of the recognized bodies preferred but not required: SANS, ISACA, (ICS)2, CompTIA, Cisco, CERT, etc.
• 6+ years of relevant experience Cybersecurity Vulnerability Management and OS Hardening practices for Windows, Linux, and network equipment.

• Experience using commercial vulnerability scanning tools from Qualys, Tenable, or Rapid7), creating vulnerability metrics, and/or OS and Application Hardening Practices using CIS benchmarks.
• Knowledge of applicable industry standards, leading security practices and regulatory requirements. 
• Strong understanding of security fundamentals and general security technologies. 
• In-depth understanding of Cyber and IT security risks, threats and prevention measures.
• Fluent in oral and written communications. 
• Results-driven, strong analytical skills, ability to connect the dots to make better decisions. 
• Able to deal well with ambiguity, balancing risk with potential delays. 
• Able to work effectively in a team and with various stakeholders at various organizational levels. 
• Excellent responsiveness, organizational, and time management skills. 
• Proactive in seeking problem resolution.
• In-depth security system analysis skills including vulnerability verification through testing.
• In-depth understanding of one or more of the following: External Attack Surface Management (EASM); Vulnerability Management (VM); Operating System, Application, and Network Device Hardening; Report Creation; Scripting (Python, PowerShell, etc.).

• OPTIONAL: Experience with Amazon Web Services (AWS) and Microsoft Azure Cloud assets, as well as on-premises systems, understanding the management options across all is preferred
• OPTIONAL: Experience with relevant scripting languages (Python, PowerShell, etc.).

This position does not follow a predefined on-call rotation schedule